[Webinar] Streamline your web hosting managementRegister Today

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 197
  • Last Modified:

IIS home page Intranet asking for credentials

I have a window 2008 IIS server.  We have our intranet on this - for what ever reason my home page is asking users to log in?  I don't want this but I'm not sure what is causing this.  I have the suthentication set to anonymous, asp.net and basic authentication.  For the Anonymous user identity is has the group oldservername\IUSR_Oldservername.  The new server as a different name is this my issue or Is there something I'm missing?
0
WellingtonIS
Asked:
WellingtonIS
  • 3
  • 2
  • 2
  • +1
1 Solution
 
Pravin AsarPrincipal Systems EngineerCommented:
For some reason, you have IWA enabled for the site directory

http://support.microsoft.com/kb/837139

Is your new server on different domain name ? server name does not matter
0
 
becraigCommented:
okie so it seems like you migrated from one server to another, since you are using an account for anonymous that is not valid on the new server.

There should be a local account created on the new server similar to:
IUSR
More details on how this works in later versions of IIS
http://www.iis.net/learn/get-started/planning-for-security/understanding-built-in-user-and-group-accounts-in-iis

You can just identify the anonymous identity built into your version of windows and change the anonymous account to match this, using the instructions below:
http://technet.microsoft.com/en-us/library/cc770966%28v=ws.10%29.aspx
0
 
Pravin AsarPrincipal Systems EngineerCommented:
New installation of IIS, should create appropriate user for Anonymous  access.

I think you copied the directory structure from old machine to new as admin and this newly copied directory structure may have appropriate access.
0
Evaluating UTMs? Here's what you need to know!

Evaluating a UTM appliance and vendor can prove to be an overwhelming exercise.  How can you make sure that you're getting the security that your organization needs without breaking the bank? Check out our UTM Buyer's Guide for more information on what you should be looking for!

 
becraigCommented:
If you read the post you will see the author states:

For the Anonymous user identity is has the group oldservername\IUSR_Oldservername.


Which is clearly not accurate since that naming convention has been replaced with later versions of ISS>
0
 
David Johnson, CD, MVPOwnerCommented:
remove the basic authentication and asp authentication unless you want users to login
0
 
WellingtonISAuthor Commented:
You are correct I migrated the box - I guess I need to create a service account with full control to the site then add this to the IIS_IUSRS group?  Or would it be best to use Application pool identity?
0
 
WellingtonISAuthor Commented:
I tried Application Pool idenity and so far that's working - it's hasn't asked for credientals since.
0
 
WellingtonISAuthor Commented:
I wound up using application pool and it's working - thanks for the help
0

Featured Post

Receive 1:1 tech help

Solve your biggest tech problems alongside global tech experts with 1:1 help.

  • 3
  • 2
  • 2
  • +1
Tackle projects and never again get stuck behind a technical roadblock.
Join Now